Ransomware victim disclosure
← All victimsChama Gaucha Brazilian Steakhouse
listed as Chama Gaucha · Claimed by Cicada3301 · listed 2 years ago
Status timeline
- ListedAug 23, 2024
- Data leakeddate unknown
At a glance
- Group
- Cicada3301
- Status
- Data leaked
- Country
- United States
- Sector
- Hospitality and Tourism
- Listed on leak site
- Aug 23, 2024
About the victim
AI dossier — public-source company profileChama Gaucha Brazilian Steakhouse is an authentic churrasco restaurant featuring USDA Prime meats carved tableside by skilled gauchos, a gourmet salad bar, and Brazilian hospitality. Founded in 2008, it operates five locations across San Antonio (two locations), Houston, Dallas-Fort Worth, and Chicago.
- Industry
- Full-service Restaurant & Steakhouse (Brazilian Churrascaria)
- Address
- Multiple locations: 18318 Sonterra Place, San Antonio, TX 78258; 217 E Houston St, Suite 100, San Antonio, TX 78205; 5865 Westheimer Rd., Houston, TX 77057; 4025 William D Tate Ave, Grapevine, TX 76051; 3008 Finley Rd., Downers Grove, IL 60515
- Founded
- 2008
Attack summary
Severity: medium — Threat of data release with no proof yet published; however, a restaurant chain handling customer PII (reservations, contact details, payment) and employee data at scale represents moderate exposure risk if exfiltrated. Encryption status unknown.Cicada3301 claims to have exfiltrated data from Chama Gaucha and threatens to release it if the company does not contact them. No specific data categories or proof files have been published in the leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Customer records
- Reservation data
- Payment information
- Employee records
What the group claims
Chama Gaucha quickly gained recognition for its commitment to culinary excellence and impeccable service. The restaurant’s name, “Chama Gaucha,” translates to “Gaucho’s Flame,” representing the fiery passion and expertise that goes into every dish. From the moment guests step through the doors, they are transported to a world of warmth, hospitality, and the unmistakable aroma of mouthwatering grilled meats. Data will be released soon if the company doesn't contact us!
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

